Voici la sélection des cyberattaques majeures découvertes la semaine passée.
Vous retrouvez ci-dessous les liens directs vers les articles les plus intéressants. Pour information, cette veille est préparée avec un vrai cerveau non artificiel, alors bonne lecture et merci de soutenir le Décodeur !
Les actus sélectionnées cette semaine
Volt Typhoon Hits Multiple Electric Utilities, Expands Cyber Activity
‘Voltzite,’ the APT’s subset that focuses on OT networks and critical infrastructure, has also compromised targets in Africa.
Hackers mint 1.79 billion crypto tokens from PlayDapp gaming platform
Hackers are believed to have used a stolen private key to mint and steal over 1.79 billion PLA tokens, a cryptocurrency used within the PlayDapp ecosystem.
Wyze investigating ‘security issue’ amid ongoing outage
Wyze Labs is investigating a security issue while experiencing a service outage that has been causing connectivity issues since this morning.
Ransomware attack forces 100 Romanian hospitals to go offline
100 hospitals across Romania have taken their systems offline after a ransomware attack hit their healthcare management system.
LockBit claims cyberattack on Indian broker Motilal Oswal | TechCrunch
India’s Motilal Oswal has become the latest target of the notorious Russia-linked ransomware gang LockBit.
Iranian Hackers Target Israel to Sway Public Opinion in Hamas Conflict
Iran-aligned adversaries have attempted to use cyber tactics to sway public opinion of the Israel-Hamas war, Google found in a new report
Trans-Northern Pipelines investigating ALPHV ransomware attack claims
Trans-Northern Pipelines (TNPI) has confirmed its internal network was breached in November 2023 and that it’s now investigating claims of data theft made by the ALPHV/BlackCat ransomware gang.
LockBit claims ransomware attack on Fulton County, Georgia
The LockBit ransomware gang claims to be behind the recent cyberattack on Fulton County, Georgia, and is threatening to publish “confidential” documents if a ransom is not paid.
ALPHV ransomware claims loanDepot, Prudential Financial breaches
The ALPHV/Blackcat ransomware gang has claimed responsibility for the recent network breaches of Fortune 500 company Prudential Financial and mortgage lender loanDepot.
FBI disrupts Russian Moobot botnet infecting Ubiquiti routers
The FBI took down a botnet of small office/home office (SOHO) routers used by Russia’s Main Intelligence Directorate of the General Staff (GRU) to proxy malicious traffic and to target the United States and its allies in spearphishing and credential theft attacks.
Aircraft Leasing Company Acknowledges Cyberattack in SEC Filing
Black Basta ransomware claimed responsibility, but the company says its investigation is ongoing.
Hackers mint 1.79 billion crypto tokens from PlayDapp gaming platform
Hackers are believed to have used a stolen private key to mint and steal over 1.79 billion PLA tokens, a cryptocurrency used within the PlayDapp ecosystem.
German battery maker Varta halts production after cyberattack
Battery maker VARTA AG announced yesterday that it was targeted by a cyberattack that forced it to shut down IT systems, causing production to stop at its plants.
FBI disrupts Russian Moobot botnet infecting Ubiquiti routers
The FBI took down a botnet of small office/home office (SOHO) routers used by Russia’s Main Intelligence Directorate of the General Staff (GRU) to proxy malicious traffic and to target the United States and its allies in spearphishing and credential theft attacks.
L’hôpital d’Armentières visé par une attaque par ransomware, les urgences ferment
Le centre hospitalier d’Armentières (Nord) a été victime d’une attaque par ransomware au cours du week-end. Un piratage informatique…-Cybersécurité
Hackers Exploit YouTube Videos to Deliver Password Stealing Malware
The attacker seizes control of inactive YouTube channels using leaked old credentials. Then, they upload a distinct short video that differs from the channel’s previous content by enticing victims with promises of cracked software.
U.S. Conducted Cyberattack Against Iranian Military Ship, an Official Says
The move was part of the Biden administration’s retaliation to a drone attack at an outpost in Jordan that killed 3 Americans.
Black Basta Ransomware targets Southern Water – Cybersecurity Insiders
Southern Water, responsible for managing the UK’s water and waste facilities, made an official statement on February 12, 2024, revealing the impact of a
Hacker bietet Tool zum Klonen Schweizer Natelnummern
Potenziell könnten Cyberkriminelle Zugang zu einer fremden Telefonnummer erlangen, um beispielsweise Passwörter zurückzusetzen. Experten sind sich aber uneins, ob es sich um ein “legitimes” Angebot handelt.